search

lonnieezell / myth-auth

One-stop Auth package for CodeIgniter 4
MIT License
633 stars 207 forks source link

This user account is not yet activated #310

Closed mujib93 closed 3 years ago

mujib93 commented 3 years ago

The activation email has been successfully sent, but when I click "Activate Account" it enters the login page, when logging in, it always appears "This user account is not yet activated. Resend activation message one more time." I click Resend activation but I don't receive any more emails. can anyone help me?

MGatner commented 3 years ago

Are you using the latest version of the develop branch? Can you share your Auth.php Config file?

mujib93 commented 3 years ago

Are you using the latest version of the develop branch? Can you share your Auth.php Config file?

Auth.zip

`<?php

namespace Myth\Auth\Config;

use CodeIgniter\Config\BaseConfig; use Myth\Auth\Authentication\LocalAuthenticator;

class Auth extends BaseConfig { //-------------------------------------------------------------------- // Default User Group //-------------------------------------------------------------------- // The name of a group a user will be added to when they register // // i.e. $defaultUserGroup = 'guests'; // public $defaultUserGroup ='User';

//--------------------------------------------------------------------
// Libraries
//--------------------------------------------------------------------

public $authenticationLibs = [
    'local' => LocalAuthenticator::class
];

//--------------------------------------------------------------------
// Views used by Auth Controllers
//--------------------------------------------------------------------

public $views = [

    'login' => 'Myth\Auth\Views\login',
    'register' => 'Myth\Auth\Views\register',
   // 'login' => '\App\Views\Pages\login',
   // 'register' => '\App\Views\Pages\register',
    'forgot' => 'Myth\Auth\Views\forgot',
    'reset' => 'Myth\Auth\Views\reset',
    'emailForgot' => 'Myth\Auth\Views\emails\forgot',
    'emailActivation' => 'Myth\Auth\Views\emails\activation',
];

//--------------------------------------------------------------------
// Layout for the views to extend
//--------------------------------------------------------------------

public $viewLayout = 'Myth\Auth\Views\layout';

//--------------------------------------------------------------------
// Authentication
//--------------------------------------------------------------------
// Fields that are available to be used as credentials for login.
public $validFields = [
    'email', 'username'
];

//--------------------------------------------------------------------
// Additional Fields for "Nothing Personal"
//--------------------------------------------------------------------
// The NothingPersonalValidator prevents personal information from
// being used in passwords. The email and username fields are always
// considered by the validator. Do not enter those field names here.
//
// An extend User Entity might include other personal info such as
// first and/or last names. $personalFields is where you can add
// fields to be considered as "personal" by the NothingPersonalValidator.
// For example:
//     $personalFields = ['firstname', 'lastname'];

public $personalFields = [];

//--------------------------------------------------------------------
// Password / Username Similarity
//--------------------------------------------------------------------
//  Among other things, the NothingPersonalValidator checks the
//  amount of sameness between the password and username.
//  Passwords that are too much like the username are invalid.
//
//  The value set for $maxSimilarity represents the maximum percentage
//  of similarity at which the password will be accepted. In other words, any
//  calculated similarity equal to, or greater than $maxSimilarity
//  is rejected.
//
//  The accepted range is 0-100, with 0 (zero) meaning don't check similarity.
//  Using values at either extreme of the *working range* (1-100) is
//  not advised. The low end is too restrictive and the high end is too permissive.
//  The suggested value for $maxSimilarity is 50.
//
//  You may be thinking that a value of 100 should have the effect of accepting
//  everything like a value of 0 does. That's logical and probably true,
//  but is unproven and untested. Besides, 0 skips the work involved
//  making the calculation unlike when using 100.
//
//  The (admittedly limited) testing that's been done suggests a useful working range
//  of 50 to 60. You can set it lower than 50, but site users will probably start
//  to complain about the large number of proposed passwords getting rejected.
//  At around 60 or more it starts to see pairs like 'captain joe' and 'joe*captain' as
//  perfectly acceptable which clearly they are not.
//

//  To disable similarity checking set the value to 0.
//      public $maxSimilarity = 0;
//
public $maxSimilarity = 50;

//--------------------------------------------------------------------
// Allow User Registration
//--------------------------------------------------------------------
// When enabled (default) any unregistered user may apply for a new
// account. If you disable registration you may need to ensure your
// controllers and views know not to offer registration.
//
public $allowRegistration = true;

//--------------------------------------------------------------------
// Require confirmation registration via email
//--------------------------------------------------------------------
// When enabled, every registered user will receive an email message
// with a special link he have to confirm to activate his account.
//
 public $requireActivation = 'Myth\Auth\Authentication\Activators\EmailActivator';
// public $requireActivation = false;

//--------------------------------------------------------------------
// Allow to reset password via email
//--------------------------------------------------------------------
// When enabled, every user will have the option to reset his password
// via specified resetter. Default setting is email.
//
  public $activeResetter = 'Myth\Auth\Authentication\Resetters\EmailResetter';

// public $activeResetter = false;

//--------------------------------------------------------------------
// Allow Persistent Login Cookies (Remember me)
//--------------------------------------------------------------------
// While every attempt has been made to create a very strong protection
// with the remember me system, there are some cases (like when you
// need extreme protection, like dealing with users financials) that
// you might not want the extra risk associated with this cookie-based
// solution.
//
public $allowRemembering = false;

//--------------------------------------------------------------------
// Remember Length
//--------------------------------------------------------------------
// The amount of time, in seconds, that you want a login to last for.
// Defaults to 30 days.
//
public $rememberLength = 30 * DAY;

//--------------------------------------------------------------------
// Error handling
//--------------------------------------------------------------------
// If true, will continue instead of throwing exceptions.
//
public $silent = false;

/* --------------------------------------------------------------------
 * Encryption Algorithm to use
 * --------------------------------------------------------------------
 * Valid values are
 * - PASSWORD_DEFAULT (default)
 * - PASSWORD_BCRYPT
 * - PASSWORD_ARGON2I  - As of PHP 7.2 only if compiled with support for it
 * - PASSWORD_ARGON2ID - As of PHP 7.3 only if compiled with support for it
 *
 * If you choose to use any ARGON algorithm, then you might want to
 * uncomment the "ARGON2i/D Algorithm" options to suit your needs
 */

public $hashAlgorithm = PASSWORD_DEFAULT;

/* --------------------------------------------------------------------
 * ARGON2i/D Algorithm options
 * --------------------------------------------------------------------
 * The ARGON2I method of encryption allows you to define the "memory_cost",
 * the "time_cost" and the number of "threads", whenever a password hash is
 * created.
 * This defaults to a value of 10 which is an acceptable number.
 * However, depending on the security needs of your application
 * and the power of your hardware, you might want to increase the
 * cost. This makes the hashing process takes longer.
 */

public $hashMemoryCost = 2048;  //PASSWORD_ARGON2_DEFAULT_MEMORY_COST;

public $hashTimeCost = 4;   //PASSWORD_ARGON2_DEFAULT_TIME_COST;

public $hashThreads = 4;   //PASSWORD_ARGON2_DEFAULT_THREADS;

//--------------------------------------------------------------------
// Password Hashing Cost
//--------------------------------------------------------------------
// The BCRYPT method of encryption allows you to define the "cost"
// or number of iterations made, whenever a password hash is created.
// This defaults to a value of 10 which is an acceptable number.
// However, depending on the security needs of your application
// and the power of your hardware, you might want to increase the
// cost. This makes the hashing process takes longer.
//
// Valid range is between 4 - 31.
public $hashCost = 10;

//--------------------------------------------------------------------
// Minimum Password Length
//--------------------------------------------------------------------
// The minimum length that a password must be to be accepted.
// Recommended minimum value by NIST = 8 characters.
//
public $minimumPasswordLength = 8;

//--------------------------------------------------------------------
// Password Check Helpers
//--------------------------------------------------------------------
// The PasswordValidater class runs the password through all of these
// classes, each getting the opportunity to pass/fail the password.
// You can add custom classes as long as they adhere to the
// Password\ValidatorInterface.
//
public $passwordValidators = [
    'Myth\Auth\Authentication\Passwords\CompositionValidator',
    'Myth\Auth\Authentication\Passwords\NothingPersonalValidator',
    'Myth\Auth\Authentication\Passwords\DictionaryValidator',
    'Myth\Auth\Authentication\Passwords\PwnedValidator',
];

//--------------------------------------------------------------------
// Activator classes
//--------------------------------------------------------------------
// Available activators with config settings
//
public $userActivators = [
    'Myth\Auth\Authentication\Activators\EmailActivator' => [
        'fromEmail' => null,
        'fromName' => null,
    ],
];

//--------------------------------------------------------------------
// Resetter classes
//--------------------------------------------------------------------
// Available resetters with config settings
//
public $userResetters = [
    'Myth\Auth\Authentication\Resetters\EmailResetter' => [
        'fromEmail' => null,
        'fromName' => null,
    ],
];

//--------------------------------------------------------------------
// Reset Time
//--------------------------------------------------------------------
// The amount of time that a password reset-token is valid for,
// in seconds.
//
public $resetTime = 3600;

} ` that's my Auth.php in folder Config

mujib93 commented 3 years ago

Are you using the latest version of the develop branch? Can you share your Auth.php Config file?

CI_VERSION = '4.0.4' I'm using development and localhost mode

sirojuddin-munir commented 3 years ago

Are you using the latest version of the develop branch? Can you share your Auth.php Config file?

CI_VERSION = '4.0.4' I'm using development and localhost mode

minta nomer wa nya mas

mujib93 commented 3 years ago

minta nomer wa nya mas

sudah saya kirim email mas

sirojuddin-munir commented 3 years ago

wa aja mas, mau tanya" lebih lanjut, soalnya saya pake tutor yang sama

Pada tanggal Rab, 27 Jan 2021 pukul 11.49 mujib93 notifications@github.com menulis:

minta nomer wa nya mas

sudah saya kirim email mas

— You are receiving this because you commented. Reply to this email directly, view it on GitHub https://github.com/lonnieezell/myth-auth/issues/310#issuecomment-768027889, or unsubscribe https://github.com/notifications/unsubscribe-auth/AODNXUDBWRTDSJ5KPZT4TEDS36LO7ANCNFSM4WRENREQ .

mujib93 commented 3 years ago

wa aja mas, mau tanya" lebih lanjut, soalnya saya pake tutor yang sama Pada tanggal Rab, 27 Jan 2021 pukul 11.49 mujib93 notifications@github.com menulis: minta nomer wa nya mas sudah saya kirim email mas — You are receiving this because you commented. Reply to this email directly, view it on GitHub <#310 (comment)>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AODNXUDBWRTDSJ5KPZT4TEDS36LO7ANCNFSM4WRENREQ .

iya, sudah email wa nya

mujib93 commented 3 years ago

Problem solved, I'm tried install the library manually without using composer. Thank you @lonnieezell this library help me a lot.

Ichiromasashi commented 3 years ago

Gimana bang penyelesai an nya? bisa dishare kah? caranya?

Anglin-George commented 3 years ago

Issue still in the stable release, I installed it via composer recently. It fixed that issue ( auto activate user while register when the $requireActivation = null)

Please just re write $this->config->requireActivation === null ? $user->activate() : $user->generateActivateHash(); AuthController line.No: 165 (just put paranthesis)

MGatner commented 3 years ago

This is already fixed. I will work on a release today.

Anglin-George commented 3 years ago

This is already fixed. I will work on a release today.

Thanks

Anglin-George commented 3 years ago

@MGatner the redirection in View pages => used redirect_to() . In my casebase_url() is worked. (I'm using folder under domian to host : testserver)

Thanks in advance.

yocki24 commented 6 months ago

i use a new myth/auth and install using composer. when i disable email activation i get error like this

myth error